183 Million compromised credentials collection added to Have I Been Pwned
Data Leak
Summary
Hide ▲
Show ▼
A 183 million-credential compilation was added to Have I Been Pwned, making reused and stolen logins easier to identify and remediate. The set was shared through Synthient and built from credentials taken by infostealer malware, data breaches, credential stuffing, and phishing. The exposure spans thousands, if not millions, of sites, so the risk extends far beyond any single brand. People whose accounts appear in the collection should treat them as compromised and reset passwords immediately.
Timeline
-
27.10.2025 22:32 1 articles · 7mo ago
Google disputes false Gmail breach claims tied to 183 million credentials
Initial DisclosureGoogle denied claims that Gmail suffered a data breach affecting millions of users, saying the reports falsely tied a Synthient/HIBP collection of 183 million compromised credentials to a new Gmail breach. The company said the credentials came from information-stealing malware, data breaches, credential stuffing, and phishing over the years, and reiterated that Gmail users remain protected while Google uses large batches of exposed credentials to help people reset passwords and resecure accounts.
Show sources
- Google disputes false claims of massive Gmail data breach — www.bleepingcomputer.com — 27.10.2025 22:32